Tag: RUSSIA

Ukraine’s intel service honors civilian hackers for the first time with military award
Summary: Ukraine’s military intelligence service (HUR) has recognized the civilian hacker group Laska for their contributions to national security, marking the first formal acknowledgment of non-military cybersecurity experts. Laska received the Order of Bohdan Khmelnytsky for their actions that have reportedly undermined Russia’s military capabilities since the onset of the full-scale invasion.…
Read More
The Russia-Ukraine Cyber War Part 3: Attacks on Telecom and Critical Infrastructure
This article discusses the ongoing cyber warfare between Russia and Ukraine, detailing the various cyberattacks targeting telecommunications, critical infrastructure, and technology sectors in both countries. It highlights a range of malicious activities, including attacks on energy enterprises, telecommunication providers, and strategic technology platforms, exemplifying the impact of these digital assaults during the conflict.…
Read More
Undercover miner: how YouTubers get pressed into distributing SilentCryptoMiner as a restriction bypass tool
This article discusses the rising utilization of Windows Packet Divert drivers to manipulate network traffic, leading to a surge in malware distribution disguised as legitimate software. Cybercriminals exploit these drivers to spread various malicious tools, including remote access Trojans and cryptocurrency miners, impacting users significantly. Affected: Windows systems, Russia, YouTube creators

Keypoints :

Windows Packet Divert drivers are increasingly used for intercepting network traffic.…
Read More
Iran linked to more than 20 plots to kill or kidnap British citizens and residents
Summary: The British government has reported a significant increase in threats posed by Iran, with MI5 responding to 20 potential plots against UK citizens since 2022. Security minister Dan Jarvis outlined the government’s commitment to counter these threats, which include intimidation and violence against dissidents and critics of the Iranian regime.…
Read More
Russia to redeploy resources freed up by end of war in Ukraine, warns Finnish intelligence
Summary: Finland’s security agency, Supo, has issued a warning that Russia’s threat to Europe is expected to increase following the end of the war in Ukraine, though the timeline remains uncertain. The agency highlighted that Russia is preparing for deepening confrontations with the West and aiming to undermine support for Ukraine while seeking to restore trade relations.…
Read More
Threat Intelligence RoundUp: February
This recap outlines notable cybersecurity incidents reported in recent articles, emphasizing the evolving landscape of cyber threats and significant actions taken against cybercriminals. Affected: Cybersecurity, Government Entities, Journalists, Organizations, Healthcare

Keypoints :

U.K., U.S., and Australia imposed sanctions on Russian cyber entity “Zservers” linked to ransomware attacks.…
Read More
Cisco, Hitachi, Microsoft, and Progress Flaws Actively Exploited—CISA Sounds Alarm
Summary: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified five critical security vulnerabilities affecting various software from organizations including Cisco, Hitachi Vantara, Microsoft, and Progress. These vulnerabilities have been added to the Known Exploited Vulnerabilities (KEV) catalog due to documented instances of exploitation. Agencies are advised to implement mitigations to protect their networks against these threats.…
Read More
Summary: A recent report by Intrinsec reveals the extensive disinformation campaign dubbed “Doppelgänger,” originating from Russian networks, which targets Western nations by spreading manipulated social media content. The campaign employs fake news articles and bots to foster distrust in democratic institutions and polarize public opinion. Active in countries such as France, Germany, Ukraine, and Israel, the operation aims to undermine support for Ukraine amidst the ongoing conflict.…
Read More
DHS says CISA will not stop monitoring Russian cyber threats
Summary: The US Cybersecurity and Infrastructure Security Agency (CISA) has denied claims that it has been instructed to cease reporting on Russian cyber activities, reaffirming its commitment to defending against all cyber threats, including those from Russia. This response follows a report suggesting a shift in focus towards China and local systems, which CISA officials have labeled as false.…
Read More
Russian telecom Beeline facing outages after cyberattack
Summary: A targeted DDoS attack on the telecom company Beeline disrupted internet services for many users in Russia, marking the second major attack in weeks. The attack resulted in difficulties accessing their mobile app, website outages, and concerns over connectivity, leading to numerous complaints. This incident is part of a broader trend of cyberattacks targeting telecommunications companies in Russia, with previous similar attacks on Beeline and MegaFon reported earlier this year.…
Read More
Attackers Could Hack Smart Solar Systems and Cause Serious Damages
Summary: DW investigated the vulnerabilities in smart solar systems amid the rising demand for solar energy, highlighting risks posed by weak security measures. Interviews with cybersecurity experts revealed alarming accessibility to solar power systems, suggesting potential blackouts as a consequence of cyberattacks. The report emphasizes the urgency of securing critical infrastructure as threats to the EU energy grid escalate.…
Read More
Finland releases Russian ‘spy’ ship but continues to detain three crew members as suspects
Summary: Finnish authorities will release the Eagle S, an oil tanker involved in damage to subsea cables, while retaining three crew members for further investigation. The tanker, previously linked to Russian espionage, caused significant damage suspected to be intentional as it drifted for 62 miles. Although the vessel is allowed to transport its cargo outside EU waters, its inspections revealed serious safety deficiencies.…
Read More

Victim: La Uni,ón Country : Actor: lynx Source: http://lynxch2k5xi35j7hlbmwl7d6u2oz4vp2wqp6qkwol624cod3d6iqiyqd.onion/leaks/67c5a77d44fac8dca191bfd4 Discovered: 2025-03-03 13:27:56.197850 Published: 2025-03-03 12:58:37.705000 Description :La Unión is a Spanish company. Specializes in production and sale of fruits and vegetables. Collaborates with 3,500 family farms. Provides employment for 15,000 people. Controls the entire process from field to consumer’s table.…
Read More
The New Ransomware Groups Shaking Up 2025
Summary: In 2024, global ransomware attacks surged to 5,414 incidents, marking an 11% increase from the previous year, with a notable spike in attacks during Q2 and Q4. The emergence of 46 new ransomware groups, especially RansomHub, has significantly transformed the ransomware landscape, with these groups adopting aggressive strategies and collaborations.…
Read More
Turkey’s Attacking APT Groups and Attack Analyses
This study offers a comprehensive examination of Advanced Persistent Threats (APTs), focusing on their dynamics, techniques employed, and preventive measures. The article discusses the identification of APTs, the reasons behind attacks on Turkey, and their geopolitical and economic impacts. Furthermore, it explains the concept of Tactics, Techniques, and Procedures (TTP), their subdivision into sub-techniques, and details effective strategies to mitigate APT attacks.…
Read More